similar to: openntp, mod_deflate, and mod_security CentOS5 rpms?

I want to add mod_security to my Apache server running CentOS 5.3 and am trying to find a repository to get it from. I found it in EPEL, but they have version 2.1.7, which is over a year old according to what I found on the modsecurity.org website. Is there a repository which is keeping this up to date? Or should I just build it from source? -- Bowie

hello all: I want to install ModSecurity v2.5.4 in my system. I do the following setup to install the lua tar -xzvf lua-5.1.3.tar.gz cd lua-5.1.3/src make linux cd .. make install The ModSecurity ask me to add "LoadFile /usr/lib/liblua5.1.so" to the http.conf,but there is no liblua5.1.so in /usr/lib. I have search it and i didn't find the solution. Can any one tell me why

I'm trying to install apache 2.2.x from a tarball. And it works. But I'm also trying to install modsecure, and I can't get that to work. It might help to know what CentOS uses to install Apache when doing the ./configure. === Al

after having my own dnsbl feeded by a honeypot and even mod_security supports it for webservers i think dovecot sould support the same to prevent dictionary attacks from known bad hosts, in our case that blacklist is 100% trustable and blocks before SMTP-Auth while normal RBL's are after SASL i admit that i am not a C/C++-programmer, but i think doing the DNS request and in case it has a

Hi guys, I've planning out my upgrade to CentOS4 and one of my plans for security is to impliment the mod_security apache module to filter out unwanted malicious intent. Not having used it before, I wanted to see if anyone here has implimented it and did it block any legit traffic or cause resource traffic/serious slowdowns of their systems? I've asked on the forum about secure

Hi, I'm currently fiddling with mod_security, and before going any further, I simply wanted to ask here for any recommended documentation/tutorials on the subject. There seems to be a lot of information about mod_security out there, and right now I have a bit of a hard time wrapping my head around it. I'm grateful for any suggestions. Cheers, Niki Kovacs -- Microlinux - Solutions

I installed mod_security yesterday. Unbelievable the amount of crap it will stop in 24 hrs. Picked up the rpm at http://rpm.pbone.net This should be made part of the CentOS extra, contribs or whatever!!

I've set up a CentOS 5 system as a server for http installs. Currently up-to-date with httpd-2.2.3-11.el5_1.centos.3 mod_security-2.1.7-1.el5 my installs were failing just after the root password set up, before software selection. I tracked it down to a server error 500 and it was due to mod_security claiming the comps.xml file was too big The error: [Tue Jun 10 09:59:01 2008] [error]

So I have this nice, simple web server up running. Its purpose is to allow me external testing with HIP, and to provide some files for external distribution. Of course, there it is sitting on port 80 and the attacks are coming in per logwatch report. Examples from the report include: Requests with error response codes 404 Not Found //phpMyAdmin-2.5.1/scripts/setup.php: 1

Hello all, For the last couple of days I was trying to get my Apache/mod_proxy/mongrel setup to limit the size of the request body. The setup is as follows: 1.) Apache acts as a reverse proxy by facilitating mod_rewrite and mod_proxy 2.) Requests for non-static files are passed on to a mongrel_cluster 3.) We use mongrel for our Ruby on Rails application Note that due to some restrictions we are

Any tips on taking a Centos 4 desktop from physical hardware to virtual environment? Ted Miller Indiana, USA

Hi All, [I originally posted this message in the main CentOS users' list, but later found this list. So, I'm reposting it here since this is where it belongs.] I'm trying to install a Fedora 8 domU on a CentOS 5 dom0, but the following command fails: [root at xenmaster ~]# virt-install -p -n krs -r 512 -m 00:16:3E:66:94:5F -b xenbr0 --vnc --vncport=5910 -l

Hi im trying to configure centos to run as a dhcpd daemon but it simply doesnt work I'm using the default configuration file from dhcdp (and tried multiple alternatives). problem is that pxe clients do not aquire dhcp addresses in the log i can see that there are 3 or 4 dhcp offers per boot atempt but no dhcp requests anyone? i'm going crazy here... .i've tryed 3 diferent

Not sure if this is the best place to ask this question (and if so, please point me to a better listserv), but is there anything "wrong" RFC or best practice wise with pointing a CNAME record to a DNS server? (I'm using EveryDNS.net, and I'd like to make my CNAME records ns1-> 4.myDomain.com correspond to ns1->ns4.EveryDNS.net.) -------------- next part -------------- An

Hi, I want to setup vsftp on centos 4.5. 2 types of ftp. they are active and pasive. What is the default type ftp type o CentOS ? Is is PASIVE ftp? in /etc/vsftpd/vsftpd.conf, I found below line. What should I do for below line? # Make sure PORT transfer connections originate from port 20 (ftp-data). connect_from_port_20=YES Should I COMMENT it out? I need a very secure ftp service. YOUR

Hi Folks, We''re moving from a single lighttpd-hosted Rails box to a Apache/ mongrel cluster. In lighttpd, mod_compress had a very nice feature: if there''s a static file, it would compress it in a user-specified compress folder. If the file hasn''t changed, it would just serve out the compress file; if the file has changed, it would recompress it and serve it out.

hello centos network I succeeded to enable compression with mod_deflate on pages served on port 80 and now I try ssl ports and No I will not happen I gave the same instructions in my ssl vhosts but it does not work I followed the documentation on Apache mod_deflate which in this case does not mean secure connection can you help me --

Hello, I'm trying to access the kbs centos repo for centos5. When i atempt to do so i get an error 14 followed by an error 404 and an error that the required xml file isn't found. Here's the error msg and my config, suggestions welcome. Thanks. Dave. #yum update Loading "installonlyn" plugin Setting up Install Process Setting up repositories

Anyone know anything about using mod_deflate gzipping with Rails? I''ve got it enabled in our .htaccess but it doesn''t seem to handle gzip anything going through Rails. Any ideas? Thanks --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "Ruby on Rails: Talk" group. To post to this group, send

Hello, I have read and seen many options for additions to Iptables as a firewall and security system. All seem to react to logs and not to incoming packets (as far as I have seen) I am interested in doing a number of security ideas to the firewall, iptables, on my webserver. If you have a program you would suggest or believe iptables is the proper solution, please feel free to post that. Here